From wire to web - our multi layer approach secures the entire ʻstackʼ
It would be unwise to divulge too much detail on exactly how our comprehensive security system is set out - but we feel happy enough to share a basic overview.
Our approach involves a number of stages.
First incoming packets must pass through an advanced packet filter, which scans all incoming (and outgoing) traffic for threat signatures, viruses and ʻsuspicious behaviorʼ such as port scanning or multiple authentication attempts. Attack signatures are updated monthly.
Second, traffic is then routed onto our core network, where our Enterasys switching solution assigns each packet a predefined security policy that will essentially ʻescortʼ it further around our network.
From here, web application traffic must pass through the ZEUS Traffic Manager Solution, which working at Layer7 runs additional content checks to check URL RFC conformity, illegal binary data, overly long URL length and other custom defined options per website.
Further firewall systems are deployed around our network where additional security is required, such as database servers.